6768447db09389867d527c50f7041c8eaed853484e5a4fb5c96e6eb5c0a5236e

Sharing

Copy URL Twitter E-mail

General

Target

6768447db09389867d527c50f7041c8eaed853484e5a4fb5c96e6eb5c0a5236e
Size

3.3MB
MD5

b1f26566293ea2f8b4db224965d78984
SHA1

24a9e2103f838c9ac6003bce480cbee37850e81c
SHA256

6768447db09389867d527c50f7041c8eaed853484e5a4fb5c96e6eb5c0a5236e
SHA512

379c23313b711cc5e6e8d8bf31bd7b034e4bbf340e5d0bace75c884881cea8c2ded7c4af30e5c9bdc43837bdcd6a3644e5377223015b568889bd6d6f70cca333
SSDEEP

49152:rNwsEip9g2gk4tql+QcdtG+k/wwFxhD9hdYFKmAkHN9gK5l05WBbUNYAqmLELhj:HEi0MBhhdYFVt9gEl05WKN7g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6768447db09389867d527c50f7041c8eaed853484e5a4fb5c96e6eb5c0a5236e

Files

6768447db09389867d527c50f7041c8eaed853484e5a4fb5c96e6eb5c0a5236e
.exe windows x64

bc34cd48ee78f57bc2e113da55e413d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetSystemTimeAsFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
ResetEvent
CreateThread
SetEvent
CreateEventW
SetThreadPriority
VirtualQuery
WideCharToMultiByte
CopyFileW
GetModuleHandleW
CreateProcessW
GetCurrentProcessId
GetCurrentDirectoryW
GetSystemInfo
DeleteFileW
GlobalFlags
GetFileAttributesExW
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExW
GetFileAttributesW
WaitForSingleObject
FindClose
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
FindNextFileW
GetCommandLineW
SetLastError
FindFirstFileW
ReadFile
CreateDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryW
ExitProcess
FindResourceW
LoadResource
LockResource
FreeResource
GetCurrentThreadId
InitializeCriticalSection
SizeofResource
GlobalReAlloc
MulDiv
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GlobalSize
WriteFile
Sleep
CloseHandle
CreateFileW
IsDebuggerPresent
GetTickCount
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
LCMapStringW
OutputDebugStringA
GetCurrentThread
GetModuleHandleExW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpA
lstrcmpW
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
CompareStringA
ResumeThread
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalAddAtomW
lstrcpyW
LocalFree
FormatMessageW
EncodePointer
GlobalFindAtomW
CompareStringW
GlobalGetAtomNameW
VerSetConditionMask
VerifyVersionInfoW
GetFileSize
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalHandle
LocalAlloc
LocalReAlloc
GetThreadLocale
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FlushFileBuffers
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
lstrcmpiW
VirtualProtect
SearchPathW
GetTempPathW
GetProfileIntW
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
GetFileTime
SetErrorMode
FindResourceExW
GetTempFileNameW
GetWindowsDirectoryW
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
GetStartupInfoW
OutputDebugStringW
RtlUnwindEx
RtlPcToFileHeader
GetCommandLineA
ExitThread
FreeLibraryAndExitThread
VirtualAlloc
QueryPerformanceFrequency
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
SetFilePointerEx
GetConsoleCP
GetConsoleMode

user32

GetMenu
SetMenu
TrackPopupMenu
UpdateWindow
GetForegroundWindow
BeginPaint
EndPaint
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
MapWindowPoints
EqualRect
PtInRect
SetWindowLongW
SetWindowLongPtrW
GetClassLongPtrW
GetClassNameW
GetTopWindow
SetScrollInfo
GetScrollInfo
WinHelpW
ShowWindow
BringWindowToTop
ReleaseCapture
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
CreatePopupMenu
DestroyMenu
InsertMenuItemW
InvalidateRect
SetRectEmpty
IntersectRect
DestroyIcon
UnpackDDElParam
ReuseDDElParam
SetParent
SetLayeredWindowAttributes
GetSysColorBrush
EnumDisplayMonitors
DrawStateW
IsRectEmpty
TrackMouseEvent
CharUpperW
GetAsyncKeyState
SetCapture
KillTimer
GetSystemMenu
DeleteMenu
SetWindowRgn
WindowFromPoint
NotifyWinEvent
ModifyMenuW
ClientToScreen
PostThreadMessageW
WaitMessage
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
SetFocus
DestroyAcceleratorTable
CopyAcceleratorTableW
EnumChildWindows
LockWindowUpdate
SetClassLongPtrW
CheckDlgButton
SetWindowTextW
IsDialogMessageW
CharNextW
InvalidateRgn
SetRect
GetNextDlgGroupItem
GetNextDlgTabItem
RealChildWindowFromPoint
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
UnionRect
GetIconInfo
GetMenuItemInfoW
SendDlgItemMessageA
CreateDialogIndirectParamW
EndDialog
GetKeyNameTextW
SetCursorPos
CharUpperBuffW
UpdateLayeredWindow
EnableScrollBar
GetMenuDefaultItem
SetMenuDefaultItem
CopyIcon
FrameRect
IsClipboardFormatAvailable
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsCharLowerW
MapVirtualKeyExW
SubtractRect
GetUpdateRect
GetDoubleClickTime
CreateMenu
DestroyCursor
GetComboBoxInfo
DrawIcon
GetWindowRgn
HideCaret
InvertRect
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
GetCapture
IsChild
IsMenu
GetClassInfoExW
EnableWindow
CallWindowProcW
GetMessageTime
GetMessagePos
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
MonitorFromPoint
InflateRect
CopyRect
FillRect
GetSysColor
ScreenToClient
IsWindow
RegisterWindowMessageW
GetLastActivePopup
GetWindowLongW
IsWindowEnabled
SetCursor
UnregisterClassW
MessageBoxW
ReleaseDC
GetClientRect
GetWindowDC
ShowOwnedPopups
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
PostQuitMessage
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
RegisterClipboardFormatW
SystemParametersInfoW
OffsetRect
GetSystemMetrics
GetDC
GetWindowRect
LoadImageW
GetParent
GetDesktopWindow
LoadCursorW
LoadIconW
SetPropW
MessageBeep
RedrawWindow
IsZoomed
CreateAcceleratorTableW
RegisterClassW
GetKeyState
GetWindowThreadProcessId
MonitorFromWindow
SetActiveWindow
WaitForInputIdle
OpenClipboard
GetMonitorInfoW
CloseClipboard
EmptyClipboard
MoveWindow
SetClipboardData
SetForegroundWindow
CopyImage
DefWindowProcW
PostMessageW
DestroyWindow
GetPropW
CreateWindowExW
SendMessageW
RemovePropW
GetWindowLongPtrW
LoadStringW
GetActiveWindow
GetClassInfoW
SetTimer

gdi32

GetRgnBox
OffsetRgn
GetTextColor
GetBkColor
CreateHatchBrush
Escape
ExcludeClipRect
GetClipBox
SetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
CreateRoundRectRgn
PatBlt
GetPixel
CreateRectRgn
GetObjectType
ExtSelectClipRgn
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
GetTextMetricsW
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetTextCharsetInfo
EnumFontFamiliesW
CreateSolidBrush
CreateRectRgnIndirect
CreatePatternBrush
CreatePen
CreateDIBitmap
SetTextColor
SetPixelV
GetTextFaceW
GetNearestPaletteIndex
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
SetPaletteEntries
ExtFloodFill
GetPaletteEntries
RoundRect
EnumFontFamiliesExW
Rectangle
Polyline
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
DPtoLP
SetBkColor
DeleteObject
GetObjectW
CreatePalette
SelectPalette
GetSystemPaletteEntries
GetDeviceCaps
GetDIBits
GetStockObject
RealizePalette
StretchBlt
CreateCompatibleDC
SetDIBColorTable
CreateDIBSection
SelectObject
CreateCompatibleBitmap
BitBlt
CreateFontIndirectW
GetTextExtentPoint32W
CreateDCW
CopyMetaFileW
CreateBitmap
CombineRgn
SetRectRgn
SetWindowExtEx
DeleteDC
GetMapMode

advapi32

RegQueryValueW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumKeyExW
RegEnumValueW
RegCreateKeyExW

shell32

SHGetFileInfoW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
SHGetSpecialFolderPathW
DragQueryFileW
DragFinish
SHAppBarMessage

ole32

CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoDisconnectObject
DoDragDrop
OleGetClipboard
ReleaseStgMedium
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleDuplicateData
CLSIDFromString
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CoCreateInstance
CoInitializeEx
CoUninitialize
CoInitialize
CoCreateGuid
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
OleCreateMenuDescriptor
OleLockRunning

oleaut32

VariantClear
VariantChangeType
VarBstrFromDate
VariantCopy
SysAllocString
OleCreateFontIndirect
SysFreeString
LoadTypeLi
VariantInit
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SysStringLen
SysAllocStringLen

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
InitCommonControlsEx

gdiplus

GdipBitmapLockBits
GdipFree
GdipGetImagePixelFormat
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImagePalette
GdipAlloc
GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetCompositingMode
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipDrawImageRectI
GdipCreateBitmapFromScan0
GdipSetInterpolationMode
GdiplusStartup
GdipGetImageHeight
GdipGetImagePaletteSize
GdipCloneImage
GdipDrawImageI
GdiplusShutdown

msimg32

AlphaBlend
TransparentBlt

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
StrFormatKBSizeW
PathIsUNCW

uxtheme

DrawThemeParentBackground
DrawThemeText
GetThemeSysColor
IsAppThemed
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
GetWindowTheme

oledlg

OleUIBusyW

ws2_32

WSACleanup

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 554KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 493KB - Virtual size: 493KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc34cd48ee78f57bc2e113da55e413d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

gdiplus

msimg32

shlwapi

uxtheme

oledlg

ws2_32

oleacc

imm32

winmm

winspool.drv

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 554KB - Virtual size: 553KB

.data Size: 31KB - Virtual size: 62KB

.pdata Size: 89KB - Virtual size: 89KB

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 493KB - Virtual size: 493KB

.reloc Size: 60KB - Virtual size: 60KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 554KB - Virtual size: 553KB

.data
Size: 31KB - Virtual size: 62KB

.pdata
Size: 89KB - Virtual size: 89KB

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 493KB - Virtual size: 493KB

.reloc
Size: 60KB - Virtual size: 60KB